Back end for proxying Google Analytics / Google Tag Manager stuff, which primarily enables ad-blocking avoidance.
Save your analytics from content blockers!
This is the repository with the application code for my Medium article "Save Your Analytics from Content Blockers", which allows you to launch a proxy of Google Tag Manager / Google Analytics stuff avoiding ad-blocking.
Available as a Docker container (check setup instructions below).
Google Tag Manager (or plain Google Analytics) is a set of scripts used on the front end to track user actions (button clicks, page hits, device analytics, etc). Google's out-of-the-box solution works well, however, almost all ad-blocking software block Google tag manager / Google analytics by default. Hence, companies that are just on their start may loose a big portion of valuable information about their customers - how to they use the product? What do they like/dislike? Where do they stuck? And so on - an individual precision in analytics is crucial to understand the behavior of users.
In order to solve ad-blocking issues, we have to introduce a proxy which will forward front-end requests to Google domain through our own domain. Also, we have to modify Google Tag Manager scripts "on-the-fly" to request our own domains instead of Google's ones, because all ad-blocking software block requests to domains (and some particular URLs!) which they have in their filters. Furthermore, some requests require additional data modifications which can't be done using standard proxying.
The next diagram demonstrates the problem with Google Tag Manager / Google Analytics being blocked by ad blockers.
In general, all ad blocks work the same way: they block requests to Google Analytics servers and some URLs which match their blacklists. In order to avoid blocking Google analytics, all such requests must be proxied through URLs that aren't blacklisted. Furthermore, some URLs have to be masked in order for ad-blocker not to recognize the URL.
Thus, this proxy service:
- Works as a proxy for configured domains (see below).
- Modifies the response when proxying scripts to replace Google domains with custom ones.
- Modifies the response and replaces URLs containing blacklisted paths like
/google-analytics. - Modifies proxied request to Google Measurement Protocol and overwrites user's IP address.
This repository contains a NodeJS-based proxy server which does the smart proxying magic for you. All you need is to run this proxy server on your end and figure out how to combine it with your application. Read more on this below.
Technically, NodeJS proxy API works as follows:
- Request to
/returns sample application (see src/test-static/index.html) if enabled (see config). - Request to
/domain-name-or-masked-name/*proxies requests todomain-name-or-masked-namewith path*. - You can run the application using
npm install && npm run startand request http://localhost/www.googletagmanager.com/gtag/js?id=GTM-1234567 (replaceGTM-1234567with your GTM tag). That's it!
In order to enable analytics proxying, you have to perform some DevOps in your infrastructure. Assuming you're using microservices:
- Run a dedicated back end (container) with proxy (NodeJS application / container in this repository) - see setup instructions below.
- Create forwarding rule from your front end to hit this back end.
- For instance, proxy all calls requesting
/gtm-proxy/*to this back end. You can either strip/gtm-proxyin your setup or make use ofAPP__STRIPPED_PATHenv variable by specifying it to/gtm-proxy. Ultimately, the request pathhttps://your-domain.com/gtm-proxy/www.google-analytics.com/analytics.jsshould land as/www.google-analytics.com/analytics.jsat the NodeJS proxy application/container (this repository), stripping/gtm-proxyfrom the URL. - It is important to use your own domain, as using centralized domains might one day appear at the ad-blocking databases.
- For instance, proxy all calls requesting
- Modify your initial Google Tag Manager / Google Analytics script to request the proxied file
- Replace
https://www.googletagmanager.com/gtag/js?id=UA-123456-7there to usehttps://your-domain.com/gtm-proxy/www.googletagmanager.com/gtag/js?id=UA-123456-7(or whatever path you've set up). Also, mask the URL by runningnpm run mask <YOUR_URL>in this repository so that ad-blockers won't block it right away. - For instance, if you run
npm run mask www.google-analytics.com/analytics.js, you get this masked URL:*(d3d3Lmdvb2dsZS1hbmFseXRpY3MuY29t)*/*(YW5hbHl0aWNzLmpz)*. Use it in your script tag now:<script src="/gtm-proxy/*(d3d3Lmdvb2dsZS1hbmFseXRpY3MuY29t)*/*(YW5hbHl0aWNzLmpz)*" async></script>. - The example in this repository uses unmasked
/www.googletagmanager.com/gtm.js(which is equivalent ofhttp://localhost/www.googletagmanager.com/gtm.js).
- Replace
- Test the thing!
This to consider before implementing the solution:
- Your third-parties in Google Tag Manager can rate-limit your requests if you have many users, as now they're all going from the same IP address (your back end). If you've faced rate-limiting, please let me know by creating an issue in this repository! So far, we didn't.
- Some third-parties like owox.com (yet) does not support IP overriding like Google Analytics does, meaning that all the users in your reports may appear on a map near your office/server. That's apparently their fault, but anyway you have to deal with this somehow.
- Not all the third-parties are covered by the current solution. This repository is open for your PRs if you've found more third-parties that require proxying!
The light Docker container of 41.5MB is available and ready to be run in your infrastructure.
docker pull zitros/analytics-saviour
docker run -p 80:80 zitros/analytics-saviour
# Now open http://localhost and check the proxy.Available environment variables:
APP__STRIPPED_PATH=/gtm-proxy
# A URL prefix to strip. If you didn't manage to remove this prefix in the request hitting the container, you can specify it here. To run the NodeJS application, simply clone the repository, navigate to its directory and run:
npm install && npm run startBy default, this will run a proxy with a test front end on http://localhost. You can get there and check how the request http://localhost/www.google-analytics.com/collect?v=1&_v=j73&a=... was proxied and that the ad-blocker didn't block the request. If the start is successful, after visiting http://localhost you'll see this:
Web server is listening on port 80
Proxied: www.google-analytics.com/analytics.js
Proxied: www.google-analytics.com/collect?v=1&_v=j73&a=531530768&t=pageview&_s=1&dl=http%3A%2F%2Flocalhost%2F&ul=ru&de=UTF-8&dt=Test&sd=24-bit&sr=1500x1000&vp=744x880&je=0&_u=AACAAEAB~&jid=&gjid=&cid=2E31579F-EE30-482F-9888-554A248A9495&tid=UA-98253329-1&_gid=1276054211.1554658225&z=1680756830&uip=1
Check the test-static/index.html file's code to see how to bind the proxied analytics to your front end.
You can configure which third-parties to proxy/replace and how to do it in the config file. Find the actual configuration in config.js file:
proxy: {
domains: [ // These domains are replaced in any proxied response (they are prefixed with your domain)
"adservice.google.com",
"www.google-analytics.com",
"www.googleadservices.com",
"www.googletagmanager.com",
"google-analytics.bi.owox.com",
"stats.g.doubleclick.net",
"ampcid.google.com",
"www.google.%",
"www.google.com"
],
ipOverrides: { // IP override rules for domains (which query parameter to add overriding IP with X-Forwarded-For header)
"www.google-analytics.com": {
urlMatch: /\/collect/,
queryParameterName: "uip"
}
},
maskPaths: [ // Which paths to mask in URLs. Can be regular expressions as strings
"/google-analytics",
"/r/collect",
"/j/collect",
"/pageread/conversion",
"/pagead/conversion"
]
}Any contributions are very welcome!